PageRenderTime 59ms CodeModel.GetById 27ms RepoModel.GetById 1ms app.codeStats 0ms

/src/netbsd/src/external/bsd/bind/dist/bin/tests/system/tsiggss/tests.sh

https://bitbucket.org/killerpenguinassassins/open_distrib_devel
Shell | 79 lines | 61 code | 15 blank | 3 comment | 17 complexity | 22cd8fe5bb2846bf874a2d4a2befac2f MD5 | raw file
Possible License(s): CC0-1.0, MIT, LGPL-2.0, LGPL-3.0, WTFPL, GPL-2.0, BSD-2-Clause, AGPL-3.0, CC-BY-SA-3.0, MPL-2.0, JSON, BSD-3-Clause-No-Nuclear-License-2014, LGPL-2.1, CPL-1.0, AGPL-1.0, 0BSD, ISC, Apache-2.0, GPL-3.0, IPL-1.0, MPL-2.0-no-copyleft-exception, BSD-3-Clause 
    

  1. #!/bin/sh
    2. 

  2. # tests for TSIG-GSS updates
    3. 

  3. 

  4. SYSTEMTESTTOP=..
    5. 

  5. . $SYSTEMTESTTOP/conf.sh
    6. 

  6. 

  7. status=0
    8. 

  8. 

  9. DIGOPTS="@10.53.0.1 -p 5300"
    10. 

  10. 

  11. # we don't want a KRB5_CONFIG setting breaking the tests
    12. 

  12. KRB5_CONFIG=/dev/null
    13. 

  13. export KRB5_CONFIG
    14. 

  14. 

  15. test_update() {
    16. 

  16.     host="$1"
    17. 

  17.     type="$2"
    18. 

  18.     cmd="$3"
    19. 

  19.     digout="$4"
    20. 

  20. 

  21.     cat <<EOF > ns1/update.txt
    22. 

  22. server 10.53.0.1 5300
    23. 

  23. update add $host $cmd
    24. 

  24. send
    25. 

  25. EOF
    26. 

  26.     echo "I:testing update for $host $type $cmd"
    27. 

  27.     $NSUPDATE -g ns1/update.txt > /dev/null 2>&1 || {
    28. 

  28. 	echo "I:update failed for $host $type $cmd"
    29. 

  29. 	return 1
    30. 

  30.     }
    31. 

  31. 

  32.     out=`$DIG $DIGOPTS -t $type -q $host | egrep "^${host}"`
    33. 

  33.     lines=`echo "$out" | grep "$digout" | wc -l`
    34. 

  34.     [ $lines -eq 1 ] || {
    35. 

  35. 	echo "I:dig output incorrect for $host $type $cmd: $out"
    36. 

  36. 	return 1
    37. 

  37.     }
    38. 

  38.     return 0
    39. 

  39. }
    40. 

  40. 

  41. echo "I:testing updates as administrator"
    42. 

  42. KRB5CCNAME="FILE:"`pwd`/ns1/administrator.ccache
    43. 

  43. export KRB5CCNAME
    44. 

  44. 

  45. test_update testdc1.example.nil. A "86400 A 10.53.0.10" "10.53.0.10" || status=1
    46. 

  46. test_update testdc2.example.nil. A "86400 A 10.53.0.11" "10.53.0.11" || status=1
    47. 

  47. test_update denied.example.nil. TXT "86400 TXT helloworld" "helloworld" && status=1
    48. 

  48. 

  49. echo "I:testing updates as a user"
    50. 

  50. KRB5CCNAME="FILE:"`pwd`/ns1/testdenied.ccache
    51. 

  51. export KRB5CCNAME
    52. 

  52. 

  53. test_update testdenied.example.nil. A "86400 A 10.53.0.12" "10.53.0.12" && status=1
    54. 

  54. test_update testdenied.example.nil. TXT "86400 TXT helloworld" "helloworld" || status=1
    55. 

  55. 

  56. echo "I:testing external update policy"
    57. 

  57. test_update testcname.example.nil. TXT "86400 CNAME testdenied.example.nil" "testdenied" && status=1
    58. 

  58. perl ./authsock.pl --type=CNAME --path=ns1/auth.sock --pidfile=authsock.pid --timeout=120 > /dev/null 2>&1 &
    59. 

  59. sleep 1
    60. 

  60. test_update testcname.example.nil. TXT "86400 CNAME testdenied.example.nil" "testdenied" || status=1
    61. 

  61. test_update testcname.example.nil. TXT "86400 A 10.53.0.13" "10.53.0.13" && status=1
    62. 

  62. 

  63. echo "I:testing external policy with SIG(0) key"
    64. 

  64. ret=0
    65. 

  65. $NSUPDATE -R random.data -k ns1/Kkey.example.nil.*.private <<END > /dev/null 2>&1 || ret=1
    66. 

  66. server 10.53.0.1 5300
    67. 

  67. zone example.nil
    68. 

  68. update add fred.example.nil 120 cname foo.bar.
    69. 

  69. send
    70. 

  70. END
    71. 

  71. output=`$DIG $DIGOPTS +short cname fred.example.nil.`
    72. 

  72. [ -n "$output" ] || ret=1
    73. 

  73. [ $ret -eq 0 ] || echo "I:failed"
    74. 

  74. status=`expr $status + $ret`
    75. 

  75. 

  76. [ $status -eq 0 ] && echo "I:tsiggss tests all OK"
    77. 

  77. 

  78. kill `cat authsock.pid`
    79. 

  79. exit $status
    80. 

  80.